CVE-2010-4471 SUSE CVE security@suse.de SUSE Security Team SUSE CVE-2010-4471 Interim 1 18 2024-07-27T01:41:34Z current 2021-05-30T12:55:04Z 2024-07-27T01:41:34Z cve-database/bin/generate-cvrf-cve.pl 2020-12-27T01:00:00Z CVE-2010-4471 Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, and 5.0 Update 27 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to 2D. NOTE: the previous information was obtained from the February 2011 CPU. Oracle has not commented on claims from a downstream vendor that this issue is related to the exposure of system properties via vectors related to Font.createFont and exception text. The CVRF data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0). https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/HNI5ZIF3YKNCVDE6FYERDPUF3VKGBPXR/#HNI5ZIF3YKNCVDE6FYERDPUF3VKGBPXR E-Mail link for SUSE-SA:2011:010 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/Q2K7C3L3YHDZ63EFPDAYABCG23PYPZMC/#Q2K7C3L3YHDZ63EFPDAYABCG23PYPZMC E-Mail link for SUSE-SA:2011:014 https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/4MN2XZHBZNY6EHRNRASQC35KVQQGVM73/#4MN2XZHBZNY6EHRNRASQC35KVQQGVM73 E-Mail link for SUSE-SR:2011:008 https://www.suse.com/support/security/rating/ SUSE Security Ratings SUSE Linux Enterprise Module for Legacy 12 SUSE Linux Enterprise Server 11 SP1 for Teradata SUSE Linux Enterprise Server 11 SP1-TERADATA SUSE Linux Enterprise Server 11 SP3 for Teradata SUSE Linux Enterprise Module for Legacy 12 SUSE Linux Enterprise Module for Legacy 12 SUSE Linux Enterprise Module for Legacy 12 SUSE Linux Enterprise Module for Legacy 12 SUSE Linux Enterprise Module for Legacy 12 SUSE Linux Enterprise Module for Legacy 12 SUSE Linux Enterprise Module for Legacy 12 SUSE Linux Enterprise Module for Legacy 12 java-1_6_0-ibm java-1_6_0-ibm-1.6.0_sr9.1-1.5.1 java-1_6_0-ibm-alsa-1.6.0_sr16.0-0.3.1 java-1_6_0-ibm-fonts java-1_6_0-ibm-fonts-1.6.0_sr9.1-1.5.1 java-1_6_0-ibm-jdbc java-1_6_0-ibm-jdbc-1.6.0_sr9.1-1.5.1 java-1_6_0-ibm-plugin java-1_6_0-ibm-plugin-1.6.0_sr9.1-1.5.1 java-1_6_0-ibm-1.6.0_sr9.1-1.5.1 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA java-1_6_0-ibm-alsa-1.6.0_sr16.0-0.3.1 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA java-1_6_0-ibm-fonts-1.6.0_sr9.1-1.5.1 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA java-1_6_0-ibm-jdbc-1.6.0_sr9.1-1.5.1 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA java-1_6_0-ibm-plugin-1.6.0_sr9.1-1.5.1 as a component of SUSE Linux Enterprise Server 11 SP1-TERADATA java-1_6_0-ibm as a component of SUSE Linux Enterprise Module for Legacy 12 java-1_6_0-ibm-fonts as a component of SUSE Linux Enterprise Module for Legacy 12 java-1_6_0-ibm-jdbc as a component of SUSE Linux Enterprise Module for Legacy 12 java-1_6_0-ibm-plugin as a component of SUSE Linux Enterprise Module for Legacy 12 java-1_6_0-ibm as a component of SUSE Linux Enterprise Server 11 SP1 for Teradata java-1_6_0-ibm as a component of SUSE Linux Enterprise Server 11 SP3 for Teradata Unspecified vulnerability in the Java Runtime Environment (JRE) in Oracle Java SE and Java for Business 6 Update 23 and earlier, and 5.0 Update 27 and earlier allows remote untrusted Java Web Start applications and untrusted Java applets to affect confidentiality via unknown vectors related to 2D. NOTE: the previous information was obtained from the February 2011 CPU. Oracle has not commented on claims from a downstream vendor that this issue is related to the exposure of system properties via vectors related to Font.createFont and exception text. CVE-2010-4471 SUSE Linux Enterprise Server 11 SP1-TERADATA:java-1_6_0-ibm-1.6.0_sr9.1-1.5.1 SUSE Linux Enterprise Server 11 SP1-TERADATA:java-1_6_0-ibm-alsa-1.6.0_sr16.0-0.3.1 SUSE Linux Enterprise Server 11 SP1-TERADATA:java-1_6_0-ibm-fonts-1.6.0_sr9.1-1.5.1 SUSE Linux Enterprise Server 11 SP1-TERADATA:java-1_6_0-ibm-jdbc-1.6.0_sr9.1-1.5.1 SUSE Linux Enterprise Server 11 SP1-TERADATA:java-1_6_0-ibm-plugin-1.6.0_sr9.1-1.5.1 critical 5 AV:N/AC:L/Au:N/C:P/I:N/A:N